This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json) Hash identifier: vXnmANpSbOi7/OvpgqkqLl8DVo3aJL2dkI9jVNNbrAQ= Subject key identifier: A7:E5:CF:E0:9E:41:EF:71:6B:00:C6:3D:AE:84:78:36:1D:83:82:72 Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd Certificate serial: 019AF3C05FF08FAEDD0797DBE3310009FC88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft Manifest number: 1661 Signing time: Sat 06 Dec 2025 13:01:02 +0000 Manifest this update: Sat 06 Dec 2025 13:01:02 +0000 Manifest next update: Sun 07 Dec 2025 13:01:02 +0000 Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=) 2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: TlQ2W67Gp4Kh5f1UiB4V+XwNjw7bUXZuFlm3YdILock=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:5f:f0:8f:ae:dd:07:97:db:e3:31:00:09:fc:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd Validity Not Before: Dec 6 13:01:02 2025 GMT Not After : Dec 7 13:01:02 2025 GMT Subject: CN=a7e5cfe09e41ef716b00c63dae8478361d838272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4e:f5:56:03:9c:a2:c3:64:d3:21:f9:72:79: 17:5d:8f:1a:3f:d0:e9:47:e9:39:8e:eb:bf:f7:a9: a5:36:ed:c1:80:00:4b:2f:3e:30:4c:d4:f0:8e:2a: 5d:1a:15:0f:05:1c:da:56:f9:84:b5:1d:13:02:87: b2:13:9f:5e:55:8e:4d:cb:f7:5c:de:50:d1:f0:c5: 7c:16:cc:10:04:27:55:c2:2e:3a:dc:c8:2d:91:0e: 6b:0e:18:6c:c5:c6:df:6d:e0:34:28:b0:03:4a:aa: 1d:c5:fc:ff:43:58:9b:e7:56:db:fb:57:e8:b6:be: 32:bb:9c:83:cf:99:21:56:d0:91:63:c7:65:fa:b0: 20:74:37:63:a8:e4:3d:c0:28:ab:9e:74:7d:a2:e7: d0:68:4c:f6:8d:5c:82:4c:13:09:12:90:63:2b:c6: c3:8f:25:71:14:25:f2:33:1b:fa:7c:79:37:59:fe: 25:0f:01:38:b5:f7:e0:47:5b:ac:d0:89:6d:24:d5: 2c:3b:ee:97:74:79:97:41:a5:72:64:5b:de:3a:51: 07:a7:fb:6c:6b:99:8f:cc:12:62:41:6a:4f:50:da: 13:68:91:8c:38:15:5c:e2:ea:d2:5f:77:e8:c5:15: 71:4a:22:08:b2:1e:08:16:47:a7:ef:2d:a8:1d:bf: b6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E5:CF:E0:9E:41:EF:71:6B:00:C6:3D:AE:84:78:36:1D:83:82:72 X509v3 Authority Key Identifier: keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:c7:c3:38:c6:cb:6f:2d:f2:e3:ff:89:57:d3:03:9a:86:84: bf:fe:98:1a:56:98:a0:27:38:1e:73:91:c7:16:7a:13:51:f2: 5e:75:39:c3:48:92:c9:f2:c6:b8:4a:35:07:a1:2b:44:46:58: 97:d6:df:f8:72:6f:10:23:60:a1:fc:ba:f9:79:2e:80:4b:ed: ea:15:6f:28:c9:78:02:38:9a:a4:36:94:e5:ca:29:b9:6e:d1: fd:fb:20:88:84:91:2e:5b:b1:08:e2:4a:dd:ec:43:40:e1:81: ae:c6:89:c8:f2:0e:91:d1:7a:fa:75:3f:65:62:28:13:87:ac: 9c:48:ff:cd:42:52:a2:fe:cc:32:9d:f2:d0:5e:a5:34:f0:74: 41:57:58:f2:bc:a3:1e:65:6b:11:eb:b3:bb:e7:03:c5:19:9e: 31:ab:31:2b:52:b0:00:52:2e:b9:7e:91:75:b9:86:83:cb:ac: 51:eb:56:43:c9:a8:ab:c9:fb:8b:d2:09:d2:23:4a:61:a0:97: 34:73:53:1e:25:9c:a1:85:fd:9a:11:b0:04:ee:3f:9f:b3:c2: b1:b5:7a:76:e7:3b:a7:45:b8:b8:85:99:4b:50:c9:21:d7:e8: 8d:0c:e9:96:da:3b:be:30:5e:10:18:71:62:85:07:d1:aa:08: 2b:d7:5d:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwF/wj67dB5fb4zEACfyIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNTFiNDBiMzMxOThhYzVhMWVkZjUwZmZmMDg2MjgxNjAz MzVkZmQwHhcNMjUxMjA2MTMwMTAyWhcNMjUxMjA3MTMwMTAyWjAzMTEwLwYDVQQD EyhhN2U1Y2ZlMDllNDFlZjcxNmIwMGM2M2RhZTg0NzgzNjFkODM4MjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7k71VgOcosNk0yH5cnkXXY8aP9Dp R+k5juu/96mlNu3BgABLLz4wTNTwjipdGhUPBRzaVvmEtR0TAoeyE59eVY5Ny/dc 3lDR8MV8FswQBCdVwi463MgtkQ5rDhhsxcbfbeA0KLADSqodxfz/Q1ib51bb+1fo tr4yu5yDz5khVtCRY8dl+rAgdDdjqOQ9wCirnnR9oufQaEz2jVyCTBMJEpBjK8bD jyVxFCXyMxv6fHk3Wf4lDwE4tffgR1us0IltJNUsO+6XdHmXQaVyZFveOlEHp/ts a5mPzBJiQWpPUNoTaJGMOBVc4urSX3foxRVxSiIIsh4IFken7y2oHb+2HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKflz+CeQe9xawDGPa6EeDYdg4JyMB8GA1UdIwQY MBaAFFJRtAszGYrFoe31D/8IYoFgM139MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWxHMEN6TVppc1doN2ZVUF93aGlnV0F6WGYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9lY2E4MDktZDk0Mi00ZDg5LWI0Mzgt YTFjMjk5OTJiZmJlLzEvVWxHMEN6TVppc1doN2ZVUF93aGlnV0F6WGYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9lY2E4MDktZDk0Mi00ZDg5LWI0MzgtYTFjMjk5OTJiZmJl LzEvVWxHMEN6TVppc1doN2ZVUF93aGlnV0F6WGYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIsfDOMbL by3y4/+JV9MDmoaEv/6YGlaYoCc4HnORxxZ6E1HyXnU5w0iSyfLGuEo1B6ErREZY l9bf+HJvECNgofy6+XkugEvt6hVvKMl4AjiapDaU5copuW7R/fsgiISRLluxCOJK 3exDQOGBrsaJyPIOkdF6+nU/ZWIoE4esnEj/zUJSov7MMp3y0F6lNPB0QVdY8ryj HmVrEeuzu+cDxRmeMasxK1KwAFIuuX6RdbmGg8usUetWQ8moq8n7i9IJ0iNKYaCX NHNTHiWcoYX9mhGwBO4/n7PCsbV6duc7p0W4uIWZS1DJIdfojQzplto7vjBeEBhx YoUH0aoIK9ddog== -----END CERTIFICATE-----Generated at Sat Dec 6 19:14:27 2025 by rpki-client